Home » HP Manuals » Desktops » HP dc73 » Manual Viewer

HP dc73 Protect Tools User Guide - Page 11

Creating strong password policies, Credential Manager

Add to My Manuals
Save this manual to your list of manuals

Page 11 highlights

financial services, an executive, or R&D team, or private information such as patient records or personal financial data. The following features help prevent unauthorized access: ● The pre-boot authentication feature, if enabled, helps prevent access to the operating system. See the following procedures: ◦ "Enabling and disabling smart card power-on authentication support on page 46" ◦ "Enabling and disabling power-on authentication support for Embedded Security on page 47" ◦ "Assigning a name to a Java Card on page 39" ◦ "Drive Encryption for HP ProtectTools on page 52" ● Embedded Security for HP ProtectTools helps protect sensitive user data or credentials stored locally on a PC using the following procedures: ◦ Embedded Security "Setup procedures on page 28" ◦ "Using the Personal Secure Drive on page 31" ● Using the following procedures, Credential Manager for HP ProtectTools helps ensure that an unauthorized user cannot get passwords or access to password-protected applications: ◦ Credential Manager "Setup procedures on page 12" ◦ "Using Single Sign On on page 18" ● The Personal Secure Drive feature encrypts sensitive data to help ensure it cannot be accessed without authentication using the following procedures: ◦ Embedded Security "Setup procedures on page 28" ◦ "Using the Personal Secure Drive on page 31" Creating strong password policies If a mandate goes into effect that requires the use of strong password policy for dozens of Web-based applications and databases, Credential Manager for HP ProtectTools provides a protected repository for passwords and Single Sign On convenience using the following procedures: ● Credential Manager "Setup procedures on page 12" ● "Using Single Sign On on page 18" For stronger security, Embedded Security for HP ProtectTools then protects that repository of user names and passwords. This allows users to maintain multiple strong passwords without having to write them down or try to remember them. See Embedded Security "Setup procedures on page 28." ENWW Achieving key security objectives 5

Section	Page
Introduction to security	7
HP ProtectTools features	8
Accessing HP ProtectTools Security	9
Achieving key security objectives	10
Protecting against targeted theft	10
Restricting access to sensitive data	10
Preventing unauthorized access from internal or external locations	10
Creating strong password policies	11
Additional security elements	12
Assigning security roles	12
Managing HP ProtectTools passwords	12
Creating a secure password	14
HP ProtectTools Backup and Restore	14
Backing up credentials and settings	14
Restoring credentials	15
Configuring settings	16
Credential Manager for HP ProtectTools	17
Setup procedures	18
Logging on to Credential Manger	18
Using the Credential Manager Logon Wizard	18
Logging on for the first time	19
Registering credentials	19
Registering fingerprints	19
Setting up the fingerprint reader	20
Using your registered fingerprint to log on to Windows	20
Registering a Java Card, USB eToken, or virtual token	20
Registering a USB eToken	20
Registering other credentials	20
General tasks	21
Creating a virtual token	21
Changing the Windows logon password	21
Changing a token PIN	21
Managing identity	22
Clearing an identity from the system	22
Locking the computer	23
Using Windows Logon	23
Logging on to Windows with Credential Manager	23
Adding an account	23
Removing an account	24
Using Single Sign On	24
Registering a new application	24
Using automatic registration	24
Using manual (drag and drop) registration	25
Managing applications and credentials	25
Modifying application properties	25
Removing an application from Single Sign On	25
Exporting an application	25
Importing an application	26
Modifying credentials	26
Using Application Protection	26
Restricting access to an application	27
Removing protection from an application	27
Changing restriction settings for a protected application	27
Advanced tasks (administrator only)	29
Specifying how users and administrators log on	29
Configuring custom authentication requirements	30
Configuring credential properties	30
Configuring Credential Manager settings	31
Example 1—Using the “Advanced Settings” page to allow Windows logon from Credential Manager	31
Example 2—Using the “Advanced Settings” page to require user verification before Single Sign On	32
Embedded Security for HP ProtectTools	33
Setup procedures	34
Enabling the embedded security chip	34
Initializing the embedded security chip	35
Setting up the basic user account	36
General tasks	37
Using the Personal Secure Drive	37
Encrypting files and folders	37
Sending and receiving encrypted e-mail	37
Changing the Basic User Key password	38
Advanced tasks	39
Backing up and restoring	39
Creating a backup file	39
Restoring certification data from the backup file	39
Changing the owner password	40
Resetting a user password	40
Enabling and disabling Embedded Security	40
Permanently disabling Embedded Security	40
Enabling Embedded Security after permanent disable	40
Migrating keys with the Migration Wizard	41
Java Card Security for HP ProtectTools	42
General tasks	43
Changing a Java Card PIN	43
Selecting the card reader	43
Advanced tasks (administrators only)	44
Assigning a Java Card PIN	44
Assigning a name to a Java Card	45
Setting power-on authentication	45
Enabling Java Card power-on authentication and creating an administrator Java Card	46
Creating a user Java Card	47
Disabling Java Card power-on authentication	47
BIOS Configuration for HP ProtectTools	48
General tasks	49
Managing boot options	49
Enabling and disabling system configuration options	50
Advanced tasks	52
Managing HP ProtectTools add-on module settings	52
Enabling and disabling smart card power-on authentication support	52
Enabling and disabling power-on authentication support for Embedded Security	53
Enabling and disabling DriveLock hard drive protection	54
Using DriveLock	54
DriveLock Applications	54
Managing Computer Setup passwords	55
Setting the power-on password	55
Changing the power-on password	55
Setting the setup password	55
Changing the setup password	56
Setting password options	56
Enabling and disabling stringent security	56
Enabling and disabling power-on authentication on Windows restart	56
Drive Encryption for HP ProtectTools	58
Encryption management	59
User management	60
Recovery	61
Troubleshooting	62
Credential Manager for ProtectTools	62
Embedded Security for ProtectTools	66
Miscellaneous	72
Glossary	74

Match case Limit results 1 per page

financial services, an executive, or R&D team, or private information such as patient records or personal

financial data. The following features help prevent unauthorized access:

●

The pre-boot authentication feature, if enabled, helps prevent access to the operating system. See

the following procedures:

◦

“

Enabling and disabling smart card power-on authentication support

on page

”

◦

“

Enabling and disabling power-on authentication support for Embedded Security

on page

”

◦

“

Assigning a name to a Java Card

on page

”

◦

“

Drive Encryption for HP ProtectTools

on page

”

●

Embedded Security for HP ProtectTools helps protect sensitive user data or credentials stored

locally on a PC using the following procedures:

◦

Embedded Security “

Setup procedures

on page

”

◦

“

Using the Personal Secure Drive

on page

”

●

Using the following procedures, Credential Manager for HP ProtectTools helps ensure that an

unauthorized user cannot get passwords or access to password-protected applications:

◦

Credential Manager “

Setup procedures

on page

”

◦

“

Using Single Sign On

on page

”

●

The Personal Secure Drive feature encrypts sensitive data to help ensure it cannot be accessed

without authentication using the following procedures:

◦

Embedded Security “

Setup procedures

on page

”

◦

“

Using the Personal Secure Drive

on page

”

Creating strong password policies

If a mandate goes into effect that requires the use of strong password policy for dozens of Web-based

applications and databases, Credential Manager for HP ProtectTools provides a protected repository

for passwords and Single Sign On convenience using the following procedures:

●

Credential Manager “

Setup procedures

on page

”

●

“

Using Single Sign On

on page

”

For stronger security, Embedded Security for HP ProtectTools then protects that repository of user

names and passwords. This allows users to maintain multiple strong passwords without having to write

them down or try to remember them. See Embedded Security “

Setup procedures

on page

.”

ENWW

Achieving key security objectives